+ Header always set Strict-Transport-Security "max-age=31536000"
+
+ <LocationMatch /.well-known/(webfinger|host-meta)>
+ Header always set Referrer-Policy "strict-origin-when-cross-origin"
+ RequestHeader set X-Forwarded-Proto "https"
+
+ RewriteRule ^(.*)$ https://mastodon.immae.eu%{REQUEST_URI} [QSA,L]
+ </LocationMatch>
+
+ RewriteEngine On
+ RewriteCond "%{REQUEST_URI}" "!^/.well-known/(webfinger|host-meta)"
+ RewriteCond "%{HTTP_HOST}" "!^www\.immae\.eu$" [NC]
+ RewriteRule ^(.+)$ https://www.immae.eu$1 [R=302,L]